Download presentation
Presentation is loading. Please wait.
1
Azure Active Directory - Business 2 Consumer
Jurgen van den Broek Cloud consultant
2
Customer identity cases
3
Technical solution so far
Authentication Local authentication mechanisms
4
Technical solution so far
Authentication Local authentication mechanisms Direct Social IdP integration
5
Technical solution so far
Authentication Local authentication mechanisms Direct Social IdP integration Active Directory Federation Server (ADFS) infrastructure solutions
6
Technical solution so far
Authentication Local authentication mechanisms Direct Social IdP integration Active Directory Federation Server (ADFS) infrastructure solutions Identity management Local user store
7
Technical solution so far
Authentication Local authentication mechanisms Direct Social IdP integration Active Directory Federation Server (ADFS) infrastructure solutions Identity management Local user store CRM Integration
8
Technical solution so far
Authentication Local authentication mechanisms Direct Social IdP integration Active Directory Federation Server (ADFS) infrastructure solutions Identity management Local user store CRM Integration Self Service?
9
What’s new? Customizable configuration per Application
(including branding) Single Sign On Registration functionality Social Identity Providers Azure AD B2C
10
Comparing Azure Active Directory Azure Active Directory B2C
Identity Provider Focus on self-service Enterprise identities HR Auto-provisioned License per user Azure Active Directory B2C Identity Provider Focus on self-service Customer identities CRM Self-registration Price per user / authentication
11
What’s on the menu Demo environment Authentication / Registration
Social Identity Providers Attributes and Claims Branding Typical B2C scenarios Azure AD B2C
12
Demo
13
Authentication & Registration
5/3/2018 5:30 AM Authentication & Registration © 2014 Microsoft Corporation. All rights reserved. MICROSOFT MAKES NO WARRANTIES, EXPRESS, IMPLIED OR STATUTORY, AS TO THE INFORMATION IN THIS PRESENTATION.
14
Authentication & Registration
Protocols & tokens OpenID Connect and OAuth 2.0 JWT tokens Policies Sign-in policy Sign-up policy Sign-up or sign-in policy Profile editing policy Password reset policy Identity Provider Attributes and Claims Token and Session Branding Azure AD B2C
15
Demo
16
Social Identity Providers
5/3/2018 5:30 AM Social Identity Providers © 2014 Microsoft Corporation. All rights reserved. MICROSOFT MAKES NO WARRANTIES, EXPRESS, IMPLIED OR STATUTORY, AS TO THE INFORMATION IN THIS PRESENTATION.
17
Social Identity Providers
Microsoft Amazon Google Facebook LinkedIn ..? Azure AD B2C
18
Demo
19
Attributes and Claims 5/3/2018 5:30 AM
© 2014 Microsoft Corporation. All rights reserved. MICROSOFT MAKES NO WARRANTIES, EXPRESS, IMPLIED OR STATUTORY, AS TO THE INFORMATION IN THIS PRESENTATION.
20
Attributes and Claims Attributes Custom attributes City Country Email
Given Name Surname …. Azure AD B2C
21
Attributes and Claims Attributes Claims Custom attributes
Claim handling Claims including custom attributes User Azure AD B2C
22
Demo
23
5/3/2018 5:30 AM Branding © 2014 Microsoft Corporation. All rights reserved. MICROSOFT MAKES NO WARRANTIES, EXPRESS, IMPLIED OR STATUTORY, AS TO THE INFORMATION IN THIS PRESENTATION.
24
Branding
25
Branding
26
Branding
27
Branding
28
Demo
29
Typical B2C scenarios 5/3/2018 5:30 AM
© 2014 Microsoft Corporation. All rights reserved. MICROSOFT MAKES NO WARRANTIES, EXPRESS, IMPLIED OR STATUTORY, AS TO THE INFORMATION IN THIS PRESENTATION.
30
Typical B2C scenarios Identity Management
Identity versus application data Identity Azure AD B2C Application Graph API
31
Typical B2C scenarios Identity Management
Identity versus application data ID mapping Identity Azure AD B2C Application ID Mapping
32
Typical B2C scenarios Identity Management
User Identity Management Identity versus application data ID mapping Registration Azure AD B2C
33
Typical B2C scenarios Identity Management Business to Business (B2B)
User Identity Management Identity versus application data ID mapping Registration Business to Business (B2B) Identity Administrator Azure AD B2C Application
34
B2C or B2B? B2B B2C What is it for?
IT Pros providing access to their organization’s data and apps to a partner organization. Developers working on consumer- & citizen facing mobile & web apps. Who is it for? Partner users acting “on behalf of”, as representative or employees of their organizations. Consumers and citizens acting as themselves. Manageability Govern Access: Access review, verification, allow list / deny list. Self-service: Users manage their own profiles. Discoverability Partner users are discoverable and can see other users from their own organization. Consumers and citizens are invisible to other consumers and citizens. Privacy and consent are paramount.
35
Roadmap Custom URL’s Localization support Web API’s
SAML / WS-Fed support
36
@juvdbroek
Similar presentations
